$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: R6+yblG7zHD8TJ2QUvbxD7TCtcBN903zDC0OVPydctU= Subject key identifier: 1B:3C:30:8A:1A:DF:6B:B8:83:5C:F4:1E:56:C5:E9:2E:98:7A:50:01 Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 0866 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 0861 Signing time: Sat 18 May 2024 21:38:49 +0000 Manifest this update: Sat 18 May 2024 21:38:49 +0000 Manifest next update: Sat 25 May 2024 21:38:49 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: DUOyCRYNqRttypgtw+SpFci0P8EsQidzPgEp6kFS20k=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: awdMDI45WMoyA7Hv0k/0lwP8aK2FFS10Os+VOyBIq0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: May 18 21:38:49 2024 GMT Not After : May 25 21:38:49 2024 GMT Subject: CN=66491fe9-da94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:43:73:7d:7d:aa:53:be:93:1e:80:73:a4:37: b2:51:86:a0:bc:44:18:c3:a2:9e:db:dc:4e:ab:69: 0a:09:3f:79:e8:e4:ac:0e:fc:6e:f4:59:38:b9:04: c4:e7:52:00:75:a6:1b:98:69:17:75:e9:80:ff:fb: af:be:b5:93:c5:da:9c:a5:e5:ff:d5:f8:e8:4c:90: 21:79:f2:fd:a9:cb:6b:a9:80:01:54:2e:a0:7e:00: 63:e1:3a:0f:ee:88:88:04:32:87:aa:21:c8:79:c7: 80:3e:6d:0f:a7:0c:63:e5:f2:a2:01:ed:94:94:15: da:52:81:fb:9d:65:0e:d2:bf:73:80:4f:de:e4:5e: 9d:4f:de:4c:82:3a:b1:bb:5e:ac:9e:7f:c7:23:e3: fc:a0:d5:a4:52:4d:20:b4:db:34:f7:88:b5:84:71: b8:35:4e:d5:9c:4e:bf:e9:f0:bc:b8:e8:54:5f:0d: 3a:66:d2:c5:0b:94:e6:3b:8b:92:74:94:88:03:df: f4:5b:0a:2b:52:d8:1a:d6:c7:bc:8e:6b:5b:df:8c: a6:45:34:37:81:3f:64:5d:fd:ac:ec:a2:15:93:35: 70:1c:a1:18:37:bd:2e:9e:cb:9d:e3:81:00:ac:77: fd:2b:f3:29:d8:08:a5:62:55:ed:98:42:b7:f2:87: 90:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3C:30:8A:1A:DF:6B:B8:83:5C:F4:1E:56:C5:E9:2E:98:7A:50:01 X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:bb:3c:ff:03:aa:ef:ff:df:9f:6f:ad:be:f7:a4:a8:e9:3d: 48:8c:07:08:f2:69:61:9a:b7:0c:86:6c:b0:49:4c:68:2b:9f: b4:0e:07:8a:1f:98:23:01:30:2e:8a:4c:d7:a4:b8:8e:68:2b: 83:2f:90:7f:2a:37:a1:17:04:83:90:d8:20:4b:27:3f:39:de: 4c:8b:9e:f4:97:f5:98:5c:be:b0:6c:d4:74:10:ff:b3:9f:18: d7:ea:f6:3e:59:91:19:75:74:7a:3e:07:12:df:78:35:86:09: 7c:cc:8a:63:d9:5d:c6:c4:5b:09:b7:37:99:05:10:79:d7:dd: 6e:7f:da:87:08:f7:41:71:a8:98:08:12:2c:75:a4:59:05:61: 39:0b:c1:91:65:72:76:bb:1d:6f:48:6b:69:8d:80:ab:e9:e4: 02:0a:65:66:75:ea:25:13:81:6c:f6:b6:96:72:23:15:69:52: 9e:6b:77:e4:59:2b:43:dd:c7:25:4c:79:6c:35:7a:62:97:31: ad:f7:08:9d:1e:1d:44:1b:e6:af:2e:01:d2:c0:7f:6f:49:44: cf:c7:c7:6a:1d:de:4c:c1:34:8c:31:e9:bc:9f:3e:7c:59:64: 04:7b:a1:50:39:a3:49:24:0f:bd:ed:cf:4d:f0:cd:45:7c:51: 40:62:88:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjQwNTE4MjEzODQ5WhcNMjQwNTI1MjEzODQ5WjAYMRYwFAYD VQQDEw02NjQ5MWZlOS1kYTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0NzfX2qU76THoBzpDeyUYagvEQYw6Ke29xOq2kKCT956OSsDvxu9Fk4uQTE 51IAdaYbmGkXdemA//uvvrWTxdqcpeX/1fjoTJAhefL9qctrqYABVC6gfgBj4ToP 7oiIBDKHqiHIeceAPm0Ppwxj5fKiAe2UlBXaUoH7nWUO0r9zgE/e5F6dT95Mgjqx u16snn/HI+P8oNWkUk0gtNs094i1hHG4NU7VnE6/6fC8uOhUXw06ZtLFC5TmO4uS dJSIA9/0WworUtga1se8jmtb34ymRTQ3gT9kXf2s7KIVkzVwHKEYN70unsud44EA rHf9K/Mp2AilYlXtmEK38oeQxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBs8MIoa 32u4g1z0HlbF6S6YelABMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACuzz/A6rv/9+fb62+96So6T1IjAcI8mlhmrcMhmywSUxoK5+0DgeK H5gjATAuikzXpLiOaCuDL5B/KjehFwSDkNggSyc/Od5Mi570l/WYXL6wbNR0EP+z nxjX6vY+WZEZdXR6PgcS33g1hgl8zIpj2V3GxFsJtzeZBRB5191uf9qHCPdBcaiY CBIsdaRZBWE5C8GRZXJ2ux1vSGtpjYCr6eQCCmVmdeolE4Fs9raWciMVaVKea3fk WStD3cclTHlsNXpilzGt9widHh1EG+avLgHSwH9vSUTPx8dqHd5MwTSMMem8nz58 WWQEe6FQOaNJJA+97c9N8M1FfFFAYogY -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org